Incidents - Administrator Guide - 8 - Cortex XSOAR - Cortex - Security Operations

Incidents are potential security data threats that SOC administrators identify and remediate. There are several incident triggers, including:

Cortex XSOAR includes several out-of-the-box incident types, and users can add custom incident types with custom fields, as necessary.